]> git-server-git.apps.pok.os.sepia.ceph.com Git - ceph.git/commit
projects / ceph.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: c1d75a1) | patch
rgw/auth: Deny request if service token does not have accepted roles
authorTobias Urdin <tobias.urdin@binero.se>
Mon, 2 May 2022 09:48:15 +0000 (09:48 +0000)
committerTobias Urdin <tobias.urdin@binero.se>
Wed, 21 Sep 2022 20:33:29 +0000 (20:33 +0000)
commit7ead219d726f63f55d793ebb0c059acbb310a15e
tree8e0ad39b53146d1c789aa2e2010af5820ec8b296tree | snapshot
parentc1d75a12c97ba7672cfb9d2b07a32b436f2cece4commit | diff
rgw/auth: Deny request if service token does not have accepted roles

The default behavior should be that an invalid service token
makes the request invalid even though we have not checked the
X-Auth-Token yet.

This is not required but should reflect the same behavior as other
keystonemiddleware implemented services have.

Signed-off-by: Tobias Urdin <tobias.urdin@binero.com>
src/rgw/rgw_auth_keystone.cc diff | blob | history
Unnamed repository; edit this file 'description' to name the repository.